-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 9 Apr 2022 19:14:13 EDT Source: subversion Architecture: source Version: 1.14.1-3+deb11u1 Distribution: bullseye-security Urgency: high Maintainer: James McCoy <jamessan@debian.org> Changed-By: James McCoy <jamessan@debian.org> Changes: subversion (1.14.1-3+deb11u1) bullseye-security; urgency=high . * Security Fixes: - CVE-2021-28544: Don't show unreadable copyfrom paths in 'svn log -v' - CVE-2022-24070: Fix issue #4880 "Use-after-free of object-pools when used as httpd module" * Switch gpb.conf and Vcs-Git to debian/bullseye branch Checksums-Sha256: 23a03b5d6da70e29e1b549c52bce92956083e1c75f44ffc15a88b79f7c65aa8e 3712 subversion_1.14.1-3+deb11u1.dsc eac5960a4eb15b67e421612fcb75bcdb4d2fd633609bbf68435afef3204a2d7c 432388 subversion_1.14.1-3+deb11u1.debian.tar.xz dee2796abaa1f5351e6cc2a60b1917beb8238af548b20d3e1ec22760ab2f0cad 11534165 subversion_1.14.1.orig.tar.gz 4dafc04642e634f3b75d70d3d707ba8eacc63a4925026402afcb94566f445fa6 1288 subversion_1.14.1.orig.tar.gz.asc Checksums-Sha1: b9c426f76134316c19087049b67a07b424cf3c32 3712 subversion_1.14.1-3+deb11u1.dsc b9bf2f32db7b7db7017148c2f9cbf53d5273442b 432388 subversion_1.14.1-3+deb11u1.debian.tar.xz 0cb09f8746a7ec0958f9c4dc67bdd2293fa9f859 11534165 subversion_1.14.1.orig.tar.gz ca34f173ed0890b0168c04e6846d9995b23a30f1 1288 subversion_1.14.1.orig.tar.gz.asc Files: 8a5514f6ab4e0fffa5883db272f50424 3712 vcs optional subversion_1.14.1-3+deb11u1.dsc 7a53682d95dc1ff74a4d75262a434cd6 432388 vcs optional subversion_1.14.1-3+deb11u1.debian.tar.xz 979fa7480964bd7ebae68558d1de49aa 11534165 vcs optional subversion_1.14.1.orig.tar.gz 3b2f684ec0e018a6107ebda8afe33705 1288 vcs optional subversion_1.14.1.orig.tar.gz.asc -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEEkb+/TWlWvV33ty0j3+aRrjMbo9sFAmJSE1NfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDkx QkZCRjRENjk1NkJENURGN0I3MkQyM0RGRTY5MUFFMzMxQkEzREIACgkQ3+aRrjMb o9vo1w/+IHkQ79/Vwcy99sxTDcKsI4g3vjNtn6MpxGCCSmYjf50B0h8ILZEFMPh7 BT1Q6AE5pXyTG2B6V1uK40vxfxVlvAlDkWIvKB9A3dS85K0CWTzQfqnLgE+GG42e r2+F5v7lRVVjCBpisOuaxeEicqI44cMS21AKdMGv5p+hV2S46NrW7/siz1hH10xB A3Nd8p2eze/8vh3qPQqf2z4Ni9RF9QFhfXZr2uBQnd0IwBJ/NeVuOwTAPp5RT+bD pkRcLCVK5wlxDLkbm0pGYsijvHN0YUeWwDX5jHO79ciJQoOLqvlBDwlxDTxXkoij Il0+cnxUo5s3JmMHaDUWd+2KJyLSgQo89mpyNZpASxcqr4K/KYQcGzMwt7LqZxuX 9h+dEJv3U0jSKT2KWYH4d485BxFyU/mQ+OL/aPgZSJgu3c04PZEK2cYCL2zHEhLl nZxgrI06ItsEF7YWX/5nvxvv32YWVdAbKULdDVErNqWunW3rQBPHuj9bvfXlNQM8 vNTEDVLc6NuXV9PvIS3ftBcl3+Xes7MIEQCiMs1CQHTAxQMQDELMa5SR4xuVcVW6 t3T7AiEk72S4Tk9ORvdcrWh2TP2zrJfnT1sx+v/xbrBOEea7sG0OxqV5FnVjEyeA pSo7auDeESHB7JbHjnQ49Kxj/v109j9NaSibaEE2fOiXOnVnYwI= =e4Yc -----END PGP SIGNATURE-----